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2 (5'^) Abstract: A portable certification device comprises a compact housing provided with: data storage means for storage of at 
least one cryptographic key and/or smart card interface; processing means for computer processing; at least one acoustic interface 
^ for wireless exchange of information with the device, by means of at least an acoustic signal generated using a modulation tech- 
^ nique selected from the group consisting of: frequency-shift keying, phase-shift keying, amplitude-shift keying and any combination 
^ thereof; means for supplying power to the acotislic interface, processing means, storage means and/or smart card interface. 
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Portable certification device with acoustic coupling 

Field of the invention 

The invention relates to certification methods and, more particularly, to user and 
data authentication and encryption systems. 

5 

Background of the invention 

The increasing demand for information transfer over various networks, including 
PSTN (public switched telephone network) and the Internet, makes necessary that 
security tools are used to protect sensitive data and/or to restrict remote access to a 
10 resource (e.g.: sensitive file, database server, etc.) to authorized persons only. Some 
of these tools consist of a kind of pocket calculator with cryptographic capabilities; 
they are known as "security tokens". 



Generally, security tokens generate codes ("digital signatures") which are used to 
15 certify remote transactions. To achieve a high security level, a user's PIN (personal 
identification number) must be entered into most security tokens before they can 
generate valid authentication codes. This is known as a two-factor security scheme; 
valid codes can be generated only when two things are used simultaneously: 
something the user possesses (the token) and something the user knows (the PIN). 

20 

Compared to other cryptographic tools, the security tokens offer the advantage of 
being portable and compatible with various commutation media. The main problem 
encountered with such devices is the difficulty to interface them with another 
terminal for automatic data interchange. Actually, data to authenticate is generally 
25 input manually by the user through the keypad of the token, and the user has to 
enter the .output data displayed by the token (usually the authentication codes) into 
the communication terminal. Some solutions have already been investigated to 
make this data transfer more user-friendly. 
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As an example, some security tokens are dedicated to authentication of transactions 
made by means of personal computer ("P.C."). They allow automatic input of data 
by infrared interface (using a dedicated P.C. peripheral) or by optical reading on the 
P.C. screen. Other tokens, rather dedicated to phone transactions, use the standard 
5 DTMF (dual tone multi-frequency) signals to output the generated codes either 
through an electrical connection or through a speaker or buzzer. In this latter case, 
the tokens can be considered as the well known DTMF dialers, equipped with 
cryptographic capabilities. 



10 On the other hand, FSK (frequency-shift keying) and other modulation techniques 
have been widely used for bi-directional acoustic coupling of low transmission 
speed modems. Most of these modems are now obsolete because of the 
requirements for high speed data transfers. 

1 5 The present invention combines the technologies of security tokens and acoustic 
modulation techniques, so as to provide a powerful security tool, efficient and easy 
to use, compatible with almost any communication media, thanks to its wireless 
acoustic interface. 



20 Brief description of the invention 

The present invention is a portable certification device ("PCD"), capable of 
receiving and/or transmitting data through a wireless acoustic interface. 
Certification is herein defined as a technique to restrict remote access to a resource 
to authorized persons only and/or to protect sensitive data during the transmission. 

25 Data protection may include data authentication (or electronic signature), for 
example to ensure that said data have not been modified during transmission, 
and/or data encryption to prevent unauthorized access to the said data. 



30 



The portable certification device of this invention comprises a compact housing 
provided at least with: 
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a. first means selected from the group consisting of : 

- data storage means for storage of at least one cryptographic key; 

- a means for at least reading information from a smart card containing at least one 
cryptographic key ; 

5 - any combination thereof ; 

b. at least one acoustic interface for wireless exchange of information with the 
device, by means of at least an acoustic signal generated using a modulation 
technique selected from the group consisting of: frequency-shift keying, phase-shift 
keying, amplitude-shift keying and any combination thereof; 

10 c. processing means, at least for processing signal between the acoustic interface 
and said processing means; 

d. means for supplying power to the first means, processing means and acoustic 
interface. 



1 5 The preferred modulation technique is frequency-shift keying. 

Advantageously, the processing means process at least a signal by means of an 
algorithm using at least one cryptographic key. 

20 At least one acoustic interface can be used to input data to be processed by the 
processing means and/or to output data processed by the processing means. The 
same or different interface and/or modulation technique can be used to input and 
output data. 

25 According to one embodiment, the device is equipped with a smart card interface, 
for smart card data interchange. 

In another embodiment, the device is fiirther provided with a at least one non- 
acoustic interface for data interchange. 



30 
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According to a detail of a device of the invention, the processing means comprise 
an algorithm selected from the group consisting of : algorithm for unique user 
identification, algorithm for data authentication, algorithm for data encryption, and 
any combination thereof, and/or the device comprises a means for at least reading 
5 information from a smart card, the said smart card comprising an algorithm 
selected from the group consisting of : algorithm for unique user identification, 
algorithm for data authentication, algorithm for data encryption, and any 
combination thereof For example, the processing means comprise a first algorithm 
selected from the group consisting of : algorithm for unique user identification, 
1 0 algorithm for data authentication, algorithm for data encryption, and any 

combination thereof, while the said device further comprises a means for at least 
reading infomiation from a smart card, the said smart card comprising a second 
algorithm selected from the group consisting of : algorithm for unique user 
identification, algorithm for data authentication, algorithm for data encryption, and 
any combination thereof ; the said second algorithm being different from the first. 

According to a characteristic of an embodiment, the device comprises data storage 
means for at least one cryptographic key and/or a means for at least reading 
information from a smart card containing at least one cryptographic key. For 
example, the device comprises data storage means for at least a first cryptographic 
key and a means for at least reading information from a smart card containing at 
least a second cryptographic key, different from the fu-st one. 

For specific use, the device may comprise initialization means. For example, the 
25 said initialization means include radio signal reception means. 

According to another characteristic of an embodiment, the device further comprises 
user interface means, allowing control of the device. For example, the said user 
mterface means include at least a keypad and/or at least on/ofif switching means 
30 and/or a user display. 



20 
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The acoustic interface may comprise at least a microphone and/or a speaker and/or 
buzzer and/or any combination thereof. In a preferred embodiment, the speaker is 
used as bi-directional acoustic interface. 

5 

As a result of the present invention, a portable security device is provided which 
can be interfaced to various communication media by means of wireless acoustic 
coupling. This device can be used as an access control means and/or user or data 
authentication and/or encryption tool. Although the present invention has been 
1 0 preliminary designed for remote certification, other applications can easily be 
considered by those skilled in the art. 

The invention relates also to a certification method having the improvement of 
exchanging data by means of at least an acoustic signal generated using a 
1 5 modulation technique selected from the group consisting of: FSK (frequency-shift 
keying), PSK (phase-shift keying), ASK (amplitude-shift keying) and any 
combination thereof 

The method can be applied for access control and/or user authentication and/or 
20 remote transaction certification and/or data authentication and/or data encryption. 

Processing means of the PCD are used preferably to generate unpredictable digital 
signatures for user and/or data authentication. It is to be appreciated that either 
symmetrical (private key) or asymmetrical (public key) encryption algorithm can 
25 be implemented in the PCD for digital signature generation. 

The PCI> will preferably comprise a keypad to enter the user's PIN (personal 
identification number); the said PIN being required by the processing unit for 
generation of valid digital signatures. In a preferred embodiment of this invention, 
30 this PIN will never be stored in the PCD, nor transmitted on the communication 
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channel. In another embodiment, when a lower security level is acceptable for the 
application, the PCD will operate without the need of user's PIN entry. In this latter 
case, no keypad is provided on the PCD, but a single on/off switch will be used; 
when powered on, the PCD will automatically generate an authentication code and 
send it through the acoustic interface. 

The PCD will also preferably comprise a display for user guidance and for 
displaying generated authentication codes or other information. In a preferred 
embodiment, user guidance will be achieved by means of symbols on the display. 



As a result of the present invention, a portable security device is provided which 
can be interfaced to various communication media by means of wireless acoustic 
coupling. This device can be used as an access control means and/or data 
authentication and/or encryption tool. Although the present invention has been 
1 5 preliminary designed for remote certification, other applications can easily be 
considered by those skilled in the art. 

Preferred embodiments of the invention will be described in greater details below. 
This description should be considered as an iUustration, but it is not intended to 
20 restrict in any way the scope of the present invention. 

Brief description of the drawin^^s 

Fig. 1 is a block diagram of a preferred functional description of the invention. 

25 Fig. 2A, 2B and 2C are respectively a front view, side view and rear view of a 
physical embodiment of the invention. 

Fig. 3 depicts a preferred embodiment of the authentication algorithm. 



30 



Fig. 4 describes a typical operating environment of the invention. 
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Fig.5 depicts another configuration of the server modules of Fig. 4. 
Fig.6 depicts a possible configuration of the acoustic interface. 
Fig.7 shows another possible configuration of the acoustic interface. 
Fig.8 depicts still another possible configuration of the acoustic interface. 
Fig.9 shows an improved version of the configuration depicted by Fig.8. 
Detailed description o f preferred embodiments 

The present invention is a portable certification device, hereinafter referred to 
"PCD", equipped with wireless acoustic coupling interface. It can be used 
security token for user and/or data authentication and/or for data encryption, 



as 

as a 



A functional description of the PCD is shown in Fig. 1. It is to be appreciated that 
this functional block diagram does not necessarily describe the physical 
implementation of the invention. Actually, several functions can be integrated into 
the same physical component; alternatively, some functions can be implemented by 
means of several components. Moreover, all these functional modules are 
interconnected through microprocessor bus and/or electronic circuits which will not 
be described in the scope of this document, as this technology is rather trivial for 
those skilled in the art. Similarly, a battery and/or any other power supply module 
25 and/or circuitry are considered as obvious components of the PCD which will not 
be described here, because a large variety of such modules are well known in the 
art- 
It is to be understood that Fig. 1 depicts a preferred functional description of the 
30 invention, but variations are possible by selectively excluding or including certain 
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functional modules, depending on the application. According to Fig. 1, the PCD 
preferably includes a central processing unit (10) with its internal memory (11) 
(e.g.: RAM, ROM, EEPROM, etc.), a user interface (12) and an acoustic interface 

(13) . Optionally, a dedicated initialization interface (14) and/or a smart card 
interface (15) can also be provided. Furthermore, an additional interface (16) may 
be included,for specific applications. The arrows depicts the exchange of signals 
between the central processing unit (10) and the other peripherals (1 1), (12), (13), 

(14) , (15), and/or (16). 



It is obvious for those skilled in the art that a one-chip microprocessor may include 
the central processing unit (10) and the internal memory (11). The application 
software is preferably stored in the microprocessor ROM (read only memory) 
during production of the chip (masked microprocessor), while specific parameters 
(encryption keys, device serial number, etc.) are preferably stored into the 
15 microprocessor RAM (random access memory) during a device initialization 
procedure. The user interface (12) is used by the user for controlling the device. 
Fig.2 depicts an example where this user interface physically consists of a keypad 
and a display, with their associated circuitry for communication with the 
microprocessor. 

20 

The acoustic interface (13) allows wireless coupling of the PCD to various 
communication channels. This interface will be described with more details later. 

The initialization process, also described later in more details, may use the acoustic 
25 interface (13), or even the user interface (12) for information transfer. However, in 
a preferred embodiment, a specific initialization interface (14) is provided. 
According to a possible improvement of the device, this interface may include a 
short-distance radio transmission channel, in such a way that no mechanical 
operation is required on the device (not even pressing the "on" key) to trigger the 
30 initialization process in the device. 



wo 01/11575 



PCT/BEOO/00092 



9 

According to a possible improvement of the device, the PCD may include an 
integrated smart card interface (15). Such interface for connection between a smart 
card and a microprocessor is well known by those skilled in the art and will not be 
5 described here. With such interface, the cryptographic data and/or processing of the 
PCD can be partially or completely located on a smart card. 

According to a further possible improvement of the device, an additional interface 
(16) is included to enhance the capabilities of the PCD. By way of example, this 
1 0 additional interface may be used for connecting an external power supply module 
or for exchanging data by another means than the acoustic coupling. 

A preferred physical embodiment of the invention is illustrated in Fig. 2. Referring 
to this figure, a front- , bottom- and side-view of a preferred design of the housing 

15 (20) are depicted. Shape and dimensions of this preferred housing have been 
designed for easy operation of the device, even with one hand only, and for easy 
interface to a telephone handset or a personal computer. A keypad (21) similar as a 
telephone keypad is provided for digits and and " #" symbols entry, the letters 
printed on these keys can be used fornmemonic remembering of the PIN. As an 

20 option of one embodiment of the invention, a fully alphanumeric keypad can be 
provided for alphanumeric data entry, when required for the application. At least 
one other key (22) is provided for triggering of the acoustic signal transmission 
and/or detection. One or more keys (23) are powering the device on and off; these 
keys will preferably be protected to avoid unexpected power-on of the device, for 

25 example when it is stored in a pocket. Such protection may consist in a ring (24) 
surrounding the said on/off key(s). The display (25) is preferably a liquid crystal 
display matrix; it is used for user guidance and/or for displaying generated 
authentication codes and/or other information. In this preferred embodiments, holes 
(26) are provided on the bottom side of the housing (20) to ensure efficient acoustic 

30 coupling of the PCD with various types of communication terminals. 
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It is to be appreciated that the Fig. 2 is given as an illustration of a possible 
embodiment of the application and should not be construed as a restrictive 
description of the invention. By way of example, the keypad (21) needs not to be 
5 present for applications where user's PIN entry is not required, another embodiment 
could be designed without display (25), still another embodiment could use a 
flexible membrane instead of holes (26), in order to allow acoustic coupling while 
being waterproof, etc.. Furthermore, it is to be noted that the PCD may also be 
physically protected against tampering, by means of one of the various techniques 
1 0 well known by those skilled in the art. 



Fig. 3 depicts one embodiment of the authentication algorithm. Depending on the 
application, the cryptographic algorithm CRYPTO (305) may be either a 
symmetrical (private key) or an asymmetrical (public key) encryption algorithm ; 
1 5 many existing standards (D.E.S., R.S.A., etc.) are well known by those skilled in 
the art. Depending on the chosen cryptographic algorithm CRYPTO (305), one or 
more cryptographic keys are needed; in the following description, the KEY (304) 
parameter may therefore designate one or more encryption keys. 

20 In the preferred embodiment depicted by Fig. 3, it is assumed that during an 

initialization process (explained later), the encryption key(s) have been stored in the 
device memory (1 1 of Fig. 1) in an encoded form SKEY (303), so that user's PIN 
(301) is required for decoding. Various techniques for such encoding are well 
known in the art. Accordingly, the PIN (301) entered by the user is input to the 

25 P_FMT function (302) which decodes SKEY (303), in order to retrieve the 
encryption key(s) KEY (304) to use with the selected cryptographic algorithm 
CRYPTO (305). It is worth noting that the technique used in this embodiment 
makes the PIN indispensable for valid authentication, although this PIN is never 
stored in the device nor transmitted on the communication channel. 



30 
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It should be noted that in another embodiment of the invention, SKEY (303) may 
be either partially or totally stored on a smart, card which can be accessed by means 
of the smart card interface (15 of Fig. 1). In still another embodiment, the 
cryptographic algorithm CRYPTO (305) may also be partially or totally located on 
a smart card. For example, in this latter case, the processing means of the device 
need not to include cryptographic means and the complete device may be 
considered as a smart card interface, to be used with various communication 
terminals, including P.C. and telephone. 



Furthermore, it is to be appreciated that in embodiment requiring a lower security 
level, no PIN needs to be entered. In this case, the authentication algorithm 
depicted by Fig. 3 is still valid, but items 301, 302 and 303 have to be removed. In 
this embodiment, when the device is activated by the user (preferably by means of 
a single on/offkey), the parameter KEY (304) is retrieved from device memory 
1 5 and/or from a smart card, for execution of the authentication process. 

For user authentication, the parameters PARAM (306) entered as data fields to the 
cryptographic algorithm CRYPTO (305) preferably consists in an initialization 
vector (preferably filled with zeroes), followed by the device serial number and a 

20 sequential number incremented before each new authentication code generation. 
The data authentication algorithm is preferably similar as user authentication 
algorithm, except that not only the parameters PARAM (306), but also the data 
fields DATA (307) are input to the cryptographic algorithm CRYPTO (305). In a 
preferred embodiment of the invention, the woridwide standard D.E.S. pata 

25 Encryption Standard) is used in CBC (cipher block chaining) mode; this 
technology is well known by those skilled in the art. 

The resulting output of CRYPTO (305) is preferably passed to a formatting 
function C_FMT (308) which manipulates its input in order to output an 
30 authentication code complying with the fonnat specified for the application. In one 
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embodiment of the invention, this C_FMT (308) function combines the left and 
right parts of the 16 hexadecimal digit output of the D.E.S., chosen as CRYPTO 
algorithm (305), in order to provide a 8 hexadecimal digit number which is further 
converted into a 8 decimal digit authentication code. The output of C_FMT (308) is 

5 passed to the message formatting function M_FMT (311) which builds the 
authentication message M_OUT (312) according to the format specified for the 
application. In a preferred embodiment of the invention, the authentication message 
M_OUT (3 12) consists of the device serial number, a part of the current value of 
the sequential number incremented for each code generation, the resulting 

0 authentication code and a CRC (cyclic redundancy checksum) for detection of 
eventual transmission errors. 



In another embodiment of the invention, the message M_OUT (3 12) also includes 
the data to be authenticated. If no encryption is required by the application, the said 
5 data will be included in clear text (i.e. without encryption) in the message and the 
authentication code will ensure that data are not modified during transmission. For 
applications requiring confidentiality of the transmission, only encrypted data are 
included in the message M_OUT (312). In this latter case, the CRYPTO algorithm 
(305) is used not only to generate an authentication code, but to provide a complete 
encrypted message which can be decoded after transmission so as to retrieve the 
original data message. Various methods for such encryption are well known in the 
art. 



In a particular embodiment of the invention, a PIN check value P_CHK (310) can 
be stored in the device memory (1 1 of Fig. 1) so that the validity of the PIN (301) 
entered by the user on the device keypad can be checked before generation of an 
authentication code. For that purpose, the P_CHK value (3 1 0) is generated during 
the initialization process (described later) by running the CRYPTO algorithm (305) 
using the encryption key(s) KEY (304) and predefined fixed value of parameter 
PARAM (306); the resulting output is formatted by the C_FMT function (308), 
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then preferably partially extracted by the P_EXT function (309) and stored in the 
P_CHK value (310). The P_EXT ftinction (309) is provided so that the output of 
C_FMT (309) may be partially or completely stored in P_CHK value (310), 
depending on application requirements. When the user's PIN (301) is entered on the 
5 device keypad, the KEY value (304) is retrieved by means of the P_FMT function 
(302) and the CRYPTO algorithm (305) is run using the said predefined fixed value 
of parameter PARAM (306); the resulting output is converted by the C_FMT (308) 
and P_EXT (309) functions and finally compared to the previously stored value of 
P_CHK (310). If both values do not match, the PIN entry is rejected. In a preferred 
1 0 embodiment, the device is locked when successive unsuccessful attempts for PIN 
entry are detected, to prevent fi^udulent use of the device by unauthorized persons. 
The said locking can be either temporary or permanent and preferably consists in 
disabling all functions of die device, making it not operational for the duration of 
the locking period. 



15 



In a preferred embodiment of this invention, all devices are identical just after their 
production. Consequently, before it can be used, each device has to be personalized 
by means of the initialization process. This process preferably consists in 
transmitting parameters specific to each device for storage in the device memory. 

20 In a preferred embodiment, these parameters are: the device serial number, initial 
value for sequential number to be incremented for each transaction, encryption 
key(s) and various flags for selection of operating options. The initialization 
process is preferably achieved by means of an initialization machine; a preferred 
embodiment of such machine consists in a computer (e.g. a P.C.) linked to its 

25 peripherals, preferably including a printer and a dedicated interface for 
communication with each PCD to initialize. 

In a particular embodiment, this initialization process can be triggered in the device 
by means of short-distance radio ti-ansmission. Considering that each device is 
30 preferably coming from the production factory packed in an individual box and 
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with its microprocessor unit waiting in stand-by mode, the short-distance radio 
transmission allows to "awake" the microprocessor (so that it will enter the 
initialization process) without need to open the individual packing box. Once this 
initialization process has been triggered, communication is successively established 
5 between each PCD to initialize and the initialization machine. In a preferred 

embodiment, this communication uses the short-distance radio transmission to send 
data from the initialization machine to the PCD and the acoustic interface to send 
acknowledgement data from the PCD to the initialization machine. However other 
embodiments could use any kind of communication media for data exchange 
10 between the PCD and the initialization machine, eventually including a specific 
initialization interface in the PCD. 

The initialization process preferably comprises two steps: the transmission of 
specific parameters (e.g.: serial number, encryption key(s), etc.) from the 

1 5 initialization machine to the PCD and the transmission of an acknowledgment 
signal from the PCD to the initialization machine, when the procedure has been 
successful. In a preferred embodiment, once this acknowledgment has been 
received, the initialization machine can print a label to be put on the PCD box for 
identification (the said label giving, for instance, the device serial number and the 

20 date of initialization) and store the initialization data in a secured database to be 
transferred to the authentication server (described later). 

It is to be appreciated that, in some embodiments of this invention, the 
initialization process transfers to the PCD multiple sets of parameters, each set 
25 corresponding to a specific authentication server. Accordingly, the same PCD can 
be used to authenticate transactions with various applications which can either 
share or not the same authentication server. It should also be noted that multiple set 
of parameters need not necessarily to be initialized at the same time. Actually, 
some embodiments of the invention allow remote updating of PCD parameters by 
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means of a predefined secure procedure, using for example the acoustic interface 
for encrypted data transfer. 

Fig. 4 depicts a typical operating environment of the invention. It is to be 
5 appreciated that the present invention can be used in a wide range of various 
environments which may significantly differ from the one depicted in Fig. 4. The 
following description of the PCD operations in this environment can easily be 
transposed for other environments. Furthermore, it should be noted that the 
specificity of the present invention resides in the use of a portable device 
1 0 acoustically coupled to whatever terminal; the rest of the authentication process 
described hereinafter, including the way data are processed by the authentication 
server, is not restricted to the use of the present invention, such process is common 
to most security environments and is well known in the art. 



15 



20 



25 



A user (41) is wUling to communicate with an application server (45). by means of 
a communication network (44) and a communication terminal (43) connected to the 
said communication network and preferably equipped with an acoustic interface for 
communication with the user's PCD (42). This acoustic interface of the tenninal 
(43) preferably consists in a microphone and a speaker or buzzer. Acoustic 
coupling between the PCD and the terminal is simply achieved by placing the PCD 
in the vicinity of the said acoustic interface of the terminal. As a way of example, 
the tenninal (43) can be a telephone with the handset being the acoustic interface or 
else it can be a P.C. equipped with peripherals including a microphone and a 
speaker and/or buzzer. 



In order to prevent unauthorized access to the application server (45), an 
authentication server (46) is provided, which is connected to the application server 
(45) either through the said communication channel (44), or via another connection, 
or both. In a preferred embodiment of the application, the authentication server (46) 
30 may be used as a "front-end" or "firewall" system for the application server (45), as 
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depicted in Fig. 5. The security protocol of the authentication server (46) preferably 
requires use of PCD (42) for each authorized user, who has received such a PCD 
(42) duly initialized. The initialization database of all PCD's distributed to 
authorized users has been securely transferred to the authentication server (46), 
from the initialization machine. The procedure for such database transfer will not 
be described here, as many various secure procedures are well known in the art for 
this kind of transmission. 

In a preferred operating mode of the present invention, when the user (41) wants to 
establish a communication with the application server (45), he or she uses the 
terminal (43) to connect to the application server (45). The authentication server 
(46) is alerted either by the application server (45) or, in the configuration depicted 
in Fig. 5, even before any access is made to the application server (45). The said 
authentication server (46) prompts the user (41) for logging. TTie user (41) powers 
on his or her PCD (42) and is prompted for PIN entry, preferably by means of 
symbols on the display of the PCD (42). The user's PIN is entered by means of the 
PCD keypad (21 of Fig. 2). In a preferred embodiment, the PIN is checked by the 
PCD by means of the P_CHK code (310 of Fig. 3) and a positive or negative 
acknowledge is displayed on the PCD display, preferably by means of symbols. If 
the PIN is valid, an authentication code can be generated (and preferably displayed 
on the PCD display) and an authentication message (312 of Fig. 3) is built. The 
PCD (42) is placed by the user (41) in the vicinity of the acoustic interface of the 
terminal (43). and the user (41) can start the acoustic transmission of the said 
authentication message, preferably by pressing the transmission key (22 of Fig. 2) 
on the PCD keypad. In a preferred embodiment of the invention, the acoustic signal 
is generated using the FSK (frequency-shift keying) encoding technique, but other 
possibilities for such generation are well known in the art. 



30 



As previously mentioned, the said acoustic signal transmitted to the tenninal (43) 
comprises in encoded form (preferably FSK) several data fields, preferably 
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including the PCD serial number, the authentication code and part of the current 
value of the sequential number to be incremented for each authentication code 
generation. This information is received by the terminal (43), which sends it 
through the communication network (44) to the authentication server (46). The 
received device serial number allows the authentication server to retrieve from its 
database the information concerning this device, including the encryption key(s); 
the received partial value of sequential number is used to synchronize the 
information from the database and the authentication algorithm (depicted by Fig. 3) 
is run for validation of the received authentication code. If this code is valid, a 
positive acknowledgement can be sent to the application server (45) and the user 
(41) is allowed to enter the application session. 



The PCD (42) can also be used for data authentication or encryption. In a preferred 
embodiment, the procedure is similar as for user authentication, except that after 
user's PIN entry, data to authenticate or to encrypt are also entered in the PCD. This 
data entry can be done either manually by means of the device keypad (21 of Fig. 
2) or automatically by means of the wireless acoustic connection with the terminal 
(43), or else by means of an additional interface (16 of Fig. 1). In a similar way, a 
secure communication can be established between the PCD (42) and the 
20 authentication server (46) or an initialization machine connected to the 

communication network (44) for remote updating of the internal parameters of the 
PCD (42). 



In a preferred embodiment of the invention, when data fields to be authenticated 
encrypted have been introduced in the device (either manually via the keypad or 
automatically via the acoustic interface or additional interface), the user has the 
opportunity of visualizing the said data fields on the display of the PCD for 
validation before generation of the authentication code and/or encrypted message 
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Fig. 6 depicts an embodiment of the acoustic interface. In this particular 
embodiment, the acoustic interface is used only to output data processed by the 
processing unit (10). This data is first converted in an analog signal and modulated 
by the modulation module (60). Various techniques for such digital to analog 
conversion are well know in the art and they will not be described here. The 
acoustic signal is output fi-om the device to a terminal (43) by means of a speaker 
(61), but a buzzer could also be used in another embodiment. The terminal (43) is 
equipped with a microphone to receive the said acoustic signal. If, for example, this 
terminal is an analog telephone, the said acoustic signal is transmitted trough the 
communication network (44 of Fig. 4) and will be decoded by the authentication 
server and/or the application server. In another example, where the terminal is a 
P.C. equipped with a microphone and a sound processing card , the received 
acoustic signal is preferably demodulated by the P.C. and converted back mto a 
digital signal, to be sent on the communication network using the same protocol as 
for other data exchanged between the terminal and the application server. 
Accordingly, a demodulator and analog to digital converter must be used either in 
the temiinal (43) or in the front-end processing of the application server (45 of Fig. 
4) and/or authentication sever (46 of Fig. 4) and it will be obvious for those skilled 
in the art that the said demodulator and converter have to use the decoding 
technique associated to the encoding technique used by the modulator module (60). 
In this embodiment, the FSK (frequency-shift keying) technique is preferably used, 
however other techniques could be used, including ASK (amplitude-shift keying) ' 
or PSK (phase-shift keying). 



25 Fig. 7 depicts another embodiment, where the acoustic interface is used to input 
data to be processed by the processing unit. In the case, the acoustic signal is output 
by the terminal (43). Depending on the nature of this terminal, the said acoustic 
signal can be generated either by the terminal (if this terminal is a P.C. or digital 
telephone) or by the application server peripherals (if the terminal is a simple 
analog telephone). The acoustic signal is received by means of the microphone 



20 



30 
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(71), demodulated and converted to a digital signal by the demodulation module 
(70) and then passed to the processing unit (10) for processing. The demodulation 
and analog to digital conversion is well known in the art and will not be described 
here. Again, the demodulator must use the decoding technique corresponding to the 
encoding technique used by the modulator (either in the terminal or server 
peripherals). In this embodiment, the FSK (frequency-shift keying) technique is 
preferably used, however other techniques could be used, including ASK 
(amplitude-shift keying) or PSK (phase-shift keying). 



Still another embodiment of the invention is depicted by Fig. 8, where the acoustic 
interface is used both for data input and output. This is obviously a combination of 
embodiments previously described with Fig. 6 and Fig. 7. It should be noted that 
the encoding and decoding techniques used respectively by the modulator (60) and 
demodulator (70) need not necessarily to be the same. However, in a prefeired 
1 5 embodiment, FSK technique is used for both. 

Fig. 9 depicts a preferred embodiment of the configuration shown by Fig. 8, where 
the speaker is used as a bi-directional acoustic transducer, so that no microphone is 
needed. TTiis configuration will be preferred in most cases, except when very high 
20 sensitivity is required for data input from the acoustic interface. 

By way of example, a few applications of the invention will be described below. 
However, it will be apparent for those skilled in the art that the features of this 
invention are not limited thereto but may be applied in a wide variety of other 
25 applications. 

A first application of the invention consists in using the PCD for access control to a 
restricted area (e.g.: a building, a room, a parking place, etc.). In this case, a 
microphone is placed at the entrance of the restricted area and anybody willing to 
30 access the said area has to use his or her PCD for generation of valid access code. A 
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verification server located either in the said area or in a remote site connected to the 
said area is used to verify the code and to permit access when the code is valid. 
Similarly, the PCD can be used for user authentication before allowing access to a 
local and/or remote resource, including protected machine and/or vehicle, sensitive 
database, private network, etc. 

Besides the access control, transaction certification is another typical application of 
the invention. For example, remote payments by phone or P.C. networks (e.g. 
Internet) can be certified using the data authentication capability of the invention. 
In this case, the PCD is used to generate a digital signature ensuring the 
authenticity of the data received by the application server. 

Furthermore, the PCD can also be used as a efficient and user-friendly encryption 
tool. For this application, the preferred embodiment will be equipped with bi- 
directional acoustic interface (as depicted in Fig. 8 and 9), so that automatic data 
transfer can easily be achieved between the PCD and a large variety of 
communication terminals. By way of example, such application may consists in 
allowing telephone use of a smart card based electronic purse, for remote payment 
and/or loading of the said electronic purse. 



The foregoing description has been limited to what are currently believed to be the 
preferred embodiments and applications of the present invention. However, those 
skilled in the art will realize that variations and modifications may be made thereto 
without departing from the true spirit of the invention and it is intended in the 
25 appended claims to cover all such variations and modifications as come within the 
true spirit and scope of the present invention. 
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What we claim is: 

1 . A portable certification device comprising a compact housing provided at least 
with: 

a) first means selected from the group consisting of : 

- data storage means for storage of at least one cryptographic key, 

- a means for at least reading information from a smart card containing at least one 
cryptographic key, and 

- any combination thereof ; 

b) at least one acoustic interface for wireless exchange of infonnation with the 
device, by means of at least an acoustic signal generated using a modulation 
technique selected from the group consisting of: frequency-shift keying, phase- 
shift keying, amplitude-shift keying and any combination thereof; 

c) processing means, at least for processing signal between the acoustic interface 
and said processing means; 

1 5 d) means for supplying power to the first means, processing means and acoustic 
interface. 

2. The device of claim 1 , in which the modulation technique is frequency-shift 
keying. 

3. The device of claim 1 , m which at least one acoustic interface is used to input 
20 data to be processed by the processing means. 

4. The device of claim 1 , in which at least one acoustic interface is used to output 
data processed by the processing means. 

5. The device of claim 1, in which at least one acoustic interface is used to input 
data to be processed by the processing means and to output data processed by the 

25 processing means. 

6. The device of claim 5, wherein different modulation techniques are used for 
input and output of data. 
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7. The device of claim 1 , wherein a smart card interface is provided, for smart 
card data interchange. 

8. The device of claim 1, which is further provided with at least one non-acoustic 
interface for data interchange. 

9. The device of claim 1 , wherein the processing means comprise an algorithm 
selected from the group consisting of : algorithm for unique user identification, 
algorithm for data authentication, algorithm for data encryption, and any 
combination thereof 

10. The device of claim 1, comprising a means for at least reading information from 
a smart card, the said smart card comprising an algorithm selected from the group 
consisting of: algorithm for unique user identification, algorithm for data 
authentication, algorithm for data encryption, and any combination thereof. 

11 . The device of claim 1, wherein the processing means comprise a first algorithm 
selected from the group consisting of : algorithm for unique user identification, 
algorithm for data authentication, algorithm for data encryption, and any 
combination thereof, the said device further comprising a means for at least reading 
information from a smart card, the said smart card comprising a second algorithm 
selected from the group consisting of : algorithm for unique user identification, 
algorithm for data authentication, algorithm for data encryption, and any 
combination thereof ; the said second algorithm being different from the first. 

12. The device of claim 1, which comprises data storage means for at least one 
cryptographic key. 

13. The device of claim 1, which comprises a means for at least reading 
information from a smart card containing at least one cryptographic key. 

14. The device of claim 1 , which comprises data storage means for at least a first 
cryptographic key and a means for at least reading information from a smart card 
containing at least a second cryptographic key, different from the fu-st one. 

15. The device of claim 1, which further comprises initialization means. 
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16. The device of claim 15, wherein the said initialization means are associated to 
radio signal reception means. 

17. The device of claim 1, which further comprises user interface means, allowing 
control of the device. 

5 18. The device of claim 17, in which the user interface means include at least a 
keypad. 

19. The device of claim I. which further comprises user interface means, allowing 
control of the device, said user interface means comprising at least on/off switching 
means. 

10 20. The device of claim 1, which further comprises user interface means, allowing 
control of the device, said user interface means comprising at least a user display. 

21. The device of claim 1, which comprises at least a microphone as acoustic 
interface. 

22. The device of claim 1, which comprises at least means selected from the group 
15 consisting of speaker, buzzer and any combination thereof, as acoustic interface. 

23. The device of claim 1, which comprises at least a speaker used as bi-directional 

acoustic interface. 

24. The device of claim 1. in which the processing means process at least a signal 
by means of an algorithm using at least one cryptographic key. 

20 25. A certification method having the improvement of exchanging data by means of 
at least an acoustic signal generated using a modulation technique selected from the 
group consisting of : frequency-shift keying, phase-shift keying, amplitude-shift 
keying and any combination thereof 

26. The method of claim 25 in which the modulation technique is frequency-shift 
25 keying. 

27. The method of claim 25 applied for access control. 

28. The method of claim 25 applied for user authentication. 
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29. The method of claim 25 applied for certifying remote transactions. 

30. The method of claim 25 applied for data authentication. 

3 1 . The method of claim 25 applied for data encryption. 



5 
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